Date: Thu, 6 Mar 2008 00:39:01 +0600 From: "Kuat Eshengazin" <eskuat@gmail.com> To: freebsd-pf@freebsd.org Subject: using pf to emulate different source ip's Message-ID: <e0d9d8fc0803051039n7cb3d768rf34d91ac5a051672@mail.gmail.com>
next in thread | raw e-mail | index | archive | help
Hi, I'm testing a device with application layer firewall and one of the features requires HTTP connection from multiple IP-addresses. Device logs clients ip addresses and then depending on statistic calculation tries to do smth with such kind of requests in future (block or pass for example) Device directly connected to machine with Freebsd 7.0 + pf Is it possible to rewrite source ip addresses with pf? Is it possible to pick up source ip addresses from table or list randomly/round robin? I.ve tried to play with nat rules like nat on $ext_if inet from $ext_if to any -> 192.168.2.0/24 source-hash but there was no much success. Please CC me when answering. p.s. Currently what i.m doing is simply changing interface ip address by ifconfig command before each HTTP request. Thanks in advance
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?e0d9d8fc0803051039n7cb3d768rf34d91ac5a051672>